Detections
Analytics

CIS Microsoft 365 Foundations E5 L1 v2.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Microsoft 365 Foundations E5 L1 v2.0.0

Updated: 12/4/2023

Authority: CIS

Plugin: microsoft_azure

Revision: 1.1

Estimated Item Count: 8

File Details

Filename: CIS_Microsoft_365_v2.0.0_E5_Level_1.audit

Size: 22.2 kB

MD5: 117104f15fc4b36454abfae585f54edc
SHA256: deb7138bc87af7f22eb70ffc963efa25d54461d88dc986e61a3e943ebefddff9

Audit Items

DescriptionCategories
3.5 Ensure DLP policies are enabled for Microsoft Teams
4.6 Ensure that an anti-phishing policy has been created
4.12 Ensure Priority account protection is enabled and configured
4.13 Ensure Priority accounts have 'Strict protection' presets applied
5.1.1 Ensure 'Access reviews' for Guest Users are configured
5.1.2 Ensure 'Access reviews' for high privileged Azure AD roles are configured
5.4 Ensure the Azure AD 'Risky sign-ins' report is reviewed at least weekly
5.12 Ensure the spoofed domains report is reviewed weekly